CVE-2023-6271

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 1, 2024
Updated: Jan 8, 2024

Summary

CVE-2023-6271 is a vulnerability affecting the Backup Migration WordPress plugin before version 1.3.6. This issue arises due to the plugin storing in-progress backup information in publicly-accessible files, making it easy for attackers to intercept and leak sensitive data from a site's backups. Unauthorized access to backup files may expose user credentials, database information, and other confidential data, posing a significant risk to website security. Users are urged to update the plugin to the latest version to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share